6. SQL Injection Attacks
Information in this Chapter
This chapter talks about what an SQL Injection Attack is and how to protect yourself from one.
What is an SQL Injection Attack?
An SQL Injection Attack is probably the easiest attack to prevent, while being one of the least protected against forms of attack. The core of the attack is that an SQL command is appended to the back end of a form field in the web or application front end (usually through a website), with the intent of breaking the original SQL Script and then running the SQL script that was injected into ...